site todo.html security.html

paulsp Sun, 25 Aug 2002 13:07:15 -0700

paulsp      2002/08/25 13:30:37

  Modified:    xdocs    todo.xml security.xml
               proposals Security.txt
               docs/site todo.html security.html
  Log:
  Final commit in this series.
  Security now allows the owner of the PSML to be included authorization process.
  
  Revision  Changes    Path
  1.23      +2 -2      jakarta-jetspeed/xdocs/todo.xml
  
  Index: todo.xml
  ===================================================================
  RCS file: /home/cvs/jakarta-jetspeed/xdocs/todo.xml,v
  retrieving revision 1.22
  retrieving revision 1.23
  diff -u -r1.22 -r1.23
  --- todo.xml  22 Aug 2002 01:21:31 -0000      1.22
  +++ todo.xml  25 Aug 2002 20:30:37 -0000      1.23
  @@ -115,7 +115,7 @@
       Jetspeed Security Enhancements.
       <ul>
          <li>Change Security as proposed by Jan Grant (DT)</li>
  -       <li>Owner rule (Add "owner" support in authorization) (PS)</li>
  +       <li>Owner rule (Add "owner" support in authorization) 
(PS)<br/><strong>Done</strong></li>
          <li>default security ref per portlet, per portlet-set (for customizer during 
Add Portlet)</li>
       </ul>
     </td>
  
  
  
  1.5       +4 -0      jakarta-jetspeed/xdocs/security.xml
  
  Index: security.xml
  ===================================================================
  RCS file: /home/cvs/jakarta-jetspeed/xdocs/security.xml,v
  retrieving revision 1.4
  retrieving revision 1.5
  diff -u -r1.4 -r1.5
  --- security.xml      7 Aug 2002 06:14:06 -0000       1.4
  +++ security.xml      25 Aug 2002 20:30:37 -0000      1.5
  @@ -273,6 +273,10 @@
        <td>allow-if</td>
        <td>Defines which role will be granted access for the associated action. If 
not defined, access is denied to everyone for the associated action.</td>
   </tr>
  +<tr>
  +     <td>allow-if-owner</td>
  +     <td>Defines the owner granted access for the associated action.</td>
  +</tr>
   </table>
   <br/>
   <table>
  
  
  
  1.6       +24 -5     jakarta-jetspeed/proposals/Security.txt
  
  Index: Security.txt
  ===================================================================
  RCS file: /home/cvs/jakarta-jetspeed/proposals/Security.txt,v
  retrieving revision 1.5
  retrieving revision 1.6
  diff -u -r1.5 -r1.6
  --- Security.txt      4 Jun 2002 12:12:22 -0000       1.5
  +++ Security.txt      25 Aug 2002 20:30:37 -0000      1.6
  @@ -448,6 +448,7 @@
   Elements
   
   1. allow-if
  +2. allow-if-owner
   
   If no action attribute is specified, then the rule applies to all actions.
   If no allow-if element is specified, then access is denied to everyone.
  @@ -471,6 +472,24 @@
   If no attributes are specified, the rule applies to all security types(role, user, 
group)
   
   -----------------------------------------
  +<allow-if-owner>
  +-----------------------------------------
  +
  +Attributes
  +(none)
  +
  +Elements
  +
  +(none)
  +
  +<security-entry name='owner_admin_all'>
  +  <access action="*">
  +    <allow-if role="admin"/>
  +    <allow-if-owner/>
  +  </access>
  +</security-entry>
  +
  +-----------------------------------------
   
   
   -----------------------------------------
  @@ -479,12 +498,12 @@
   
   <security-entry name='pigInAPoke7'>
     <access action="view">
  -    <allow-if role="clerk">
  -    <allow-if role="manager">
  -    <allow-if user="superman">
  +    <allow-if role="clerk"/>
  +    <allow-if role="manager"/>
  +    <allow-if user="superman"/>
     </access>
     <access action="customize">
  -    <allow-if role="manager" user="superman">
  +    <allow-if role="manager" user="superman"/>
     </access>
   </security-entry>
   
  
  
  
  1.34      +1 -1      jakarta-jetspeed/docs/site/todo.html
  
  Index: todo.html
  ===================================================================
  RCS file: /home/cvs/jakarta-jetspeed/docs/site/todo.html,v
  retrieving revision 1.33
  retrieving revision 1.34
  diff -u -r1.33 -r1.34
  --- todo.html 22 Aug 2002 01:21:32 -0000      1.33
  +++ todo.html 25 Aug 2002 20:30:37 -0000      1.34
  @@ -326,7 +326,7 @@
       Jetspeed Security Enhancements.
       <ul>
          <li>Change Security as proposed by Jan Grant (DT)</li>
  -       <li>Owner rule (Add "owner" support in authorization) (PS)</li>
  +       <li>Owner rule (Add "owner" support in authorization) (PS)<br 
/><strong>Done</strong></li>
          <li>default security ref per portlet, per portlet-set (for customizer during 
Add Portlet)</li>
       </ul>
     
  
  
  
  1.7       +12 -0     jakarta-jetspeed/docs/site/security.html
  
  Index: security.html
  ===================================================================
  RCS file: /home/cvs/jakarta-jetspeed/docs/site/security.html,v
  retrieving revision 1.6
  retrieving revision 1.7
  diff -u -r1.6 -r1.7
  --- security.html     7 Aug 2002 06:13:42 -0000       1.6
  +++ security.html     25 Aug 2002 20:30:37 -0000      1.7
  @@ -743,6 +743,18 @@
               </font>
   </td>
               </tr>
  +                                <tr>
  +                        <td bgcolor="#a0ddf0" colspan="" rowspan="" valign="top" 
align="left">
  +    <font color="#000000" size="-1" face="arial,helvetica,sanserif">
  +                allow-if-owner
  +            </font>
  +</td>
  +                                <td bgcolor="#a0ddf0" colspan="" rowspan="" 
valign="top" align="left">
  +    <font color="#000000" size="-1" face="arial,helvetica,sanserif">
  +                Defines the owner granted access for the associated action.
  +            </font>
  +</td>
  +            </tr>
               </table>
                                                   <br />
                                                   <table>


--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

cvs commit: jakarta-jetspeed/docs/site todo.html security.html

Reply via email to